Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Address resolution protocol (ARP) message processing method, device and access equipment

A technology for address resolution protocol and access equipment, which is applied in the fields of devices and access equipment, and the processing method of address resolution protocol messages, can solve problems such as potential safety hazards and restrictions on network deployment flexibility, and achieve improved flexibility and network configuration Simple and effective in preventing ARP spoofing

Active Publication Date: 2010-11-17
BEIJING XINWANG RUIJIE NETWORK TECH CO LTD
View PDF3 Cites 15 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Through this detection method, although ARP attacks inside the LAN can be defended to a certain extent, this method also has certain defects: for static ARP detection entries, it can only be used when the access device has enabled the ARP detection function. Therefore, if you want to implement global ARP defense on access devices, you need to enable the detection function on all ports, which will limit the flexibility of network deployment to a large extent
Therefore, for these secure channel ports, if the hosts under this port initiate ARP spoofing due to reasons such as ARP poisoning or malicious attacks, since this port cannot perform ARP detection, these hosts can successfully spoof the gateway or gateway connected to the same access device. Other legitimate user hosts, resulting in a great security risk

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Address resolution protocol (ARP) message processing method, device and access equipment
  • Address resolution protocol (ARP) message processing method, device and access equipment
  • Address resolution protocol (ARP) message processing method, device and access equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0023] figure 1 It is a flow chart of Embodiment 1 of the processing method of the address resolution protocol message of the present invention, such as figure 1 As shown, this embodiment specifically includes the following steps:

[0024] Step 100, when the access device receives the first ARP message sent by the terminal through the privi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides address resolution protocol (ARP) message processing method, device and access equipment. The method comprises the following steps of: detecting whether an ARP message conforms to the preset anti-cheating feature entry of the access equipment when the access equipment receives the ARP message transmitted by a terminal through privileged ports, wherein the anti-cheating feature entry comprises the filtration of ARP messages of which the transmit leg IP address is the IP address of any legal terminal of the access equipment and ARP messages of which the transmit leg MAC address is the MAC address of any legal terminal, and the privileged ports comprise ports which do not set up static ARP detection functions; and if the ARP message conforms to the preset anti-cheatingfeature entry, filtering the ARP message. The invention effectively prevents an illegal terminal from carrying out ARP cheat by personating a legal terminal through privileged ports. Besides, the invention can be realized without the participation of gateway equipment and a user's host, thereby ensuring simple network configuration and improving the flexibility, the stability and the safety of network allocation.

Description

technical field [0001] The invention relates to the field of communication technologies, in particular to a processing method, device and access equipment for address resolution protocol messages. Background technique [0002] In the current network technology, terminal devices are distinguished in the network by an Internet Protocol (Internet Protocol, IP) address. Therefore, in communication, when the sender terminal device that initiates the communication sends a message to other terminal devices, it needs to obtain the Media Access Control (MAC) address of the target terminal to complete the encapsulation of the sent message, which requires Realize the conversion between the IP address and MAC address of the device. At present, the address conversion is usually implemented by Address Resolution Protocol (ARP for short), and the ARP protocol converts the IP address of the target terminal device into a MAC address to ensure smooth progress of communication. [0003] Beca...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/56H04L29/06H04L29/12H04L12/26
Inventor 张炯煌
Owner BEIJING XINWANG RUIJIE NETWORK TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com